CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

EUVD•added 2025/10/03 8:7 p.m.•5 views

EUVD-2022-4694

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.00145EPSS

Exploits0References5

SUSE CVE•added 2023/02/15 4:4 a.m.•4 views

SUSE CVE-2020-2247

Jenkins Klocwork Analysis Plugin 2020.2.1 and earlier does not configure its XML parser to prevent XML external entity XXE attacks...

6.5CVSS6.6AI score0.00145EPSS

Exploits0References3

OSV•added 2022/05/24 5:27 p.m.•18 views

GHSA-P6C5-737R-2R93 XXE vulnerability in Jenkins Klocwork Analysis Plugin

Klocwork Analysis Plugin 2020.2.1 and earlier does not configure its XML parser to prevent XML external entity XXE attacks. This allows a user able to control the input files for the Klocwork plugin parser to have Jenkins parse a crafted file that uses external entities for extraction of secrets...

7.1CVSS6.3AI score0.00145EPSS

Exploits0References4

OSV•added 2020/09/01 2:15 p.m.•16 views

CVE-2020-2247

Jenkins Klocwork Analysis Plugin 2020.2.1 and earlier does not configure its XML parser to prevent XML external entity XXE attacks...

6.5CVSS6.7AI score

Exploits0References2

CVE•added 2020/09/01 1:50 p.m.•52 views

CVE-2020-2247

CVE-2020-2247 affects the Jenkins Klocwork Analysis Plugin, where versions 2020.2.1 and earlier do not configure their XML parser to prevent XML external entity (XXE) attacks. This security gap could allow crafted input files to trigger XXE processing on the Jenkins server. The Connected document...

6.5CVSS6.4AI score0.00145EPSS

Exploits0References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by